Welcome to Andy Infosec (9021928862 )

  • info@andyinfosec.com
  • Training|Research|Services, 303 RK One, Dam Road, Rasta Peth, Pune, Maharashtra, India


Training Fees : 35,000 INR ( before applicable discounts )


Click here for Fees breakdown and discount offers


Intensive 4 full days course providing comprehensive coverage for CISA Exam preparation



  • Virtual Training Class - Live sessions
  • Experienced Certified Trainer 
  • Real case scenarios and Practice Questions
  • Enrollment open for first weekend batch 



CISM (Certified Information Security Manager) Virtual Training Class (VTC) from Andy InfoSec is an engaging, instructor led course that enhances employment opportunities of the professionals. With recent independent studies consistently ranking CISM as one of the highest paying and sought after IT certifications, it's a great course to help with your professional development.


It provides management with assurance that you have the required experience to provide effective security management and consulting services. The uniquely management-focused CISM certification promotes international security practices and recognizes the individual who manages designs, and oversees and assesses an enterprise’s information security.The demand for skilled information security management professionals is on the rise, and the CISM certification is the globally accepted standard of achievement in this area.


Course Objective

Our CISM virtual training class (VTC) provides you with all the knowledge you need to become an information security manager.


The course is a comprehensive study of the following domain:



  • Information Security Governance
  • Information Risk Management and Compliance
  • Information Security Program Development and Management
  • Information Security Incident Management



By the end of this course, you will:



  • Understand how to establish and maintain the necessary frameworks that will ensure information security strategies are aligned with business objectives, and consistent with applicable laws and regulations
  • Confidently identify and manage information security risks to achieve business objectives
  • Be familiar with industry accepted terminology and practices used by information security professionals
  • Gain the necessary knowledge and skills for the ISACA CISM exam




There are no prerequisites for this CISM training course, however, applicants must meet the following requirements to become CISM Certified:



  • Pass the CISM examination
  • Submit an application for CISM certification
  • Adhere to the Code of Professional Ethics
  • Adhere to the Continuing Professional Education (CPE) Policy
  • A minimum of 5-years of professional information security management work experience is required for certification. Substitutions and waivers may be obtained for a maximum of 2-years




Benefits of CISM Certification:



  • Professional credibility and recognition enhanced
  • The professionals can work anywhere across the globe as it is globally recognized credential.
  • Career move ahead rapidly
  • Earning potential unleashed as CISM certification is among the highest paying IT and impactful certifications that an IT security professional can earn



Suitable For 

While it is not an exhaustive list, CISM certification holders are ideal for: 



  • Anyone seeking to transition their skills to Information Systems (IS) and IS Security
  • Individuals who aspire to realise the best benefit from their professional qualification investment
  • Information Security Managers
  • Aspiring Information Security Managers
  • IS/IT Consultants
  • Chief Information Officers
  • IS/IT professionals


The above list is a suggestion only, individuals may wish to attend based on their own career aspirations, personal goals or objectives.


About CISM Exam


  • CISM Facts
  • Answering Exam Questions
  • Exam Scoring
  • Certification Steps


Domain 1: Information Security Governance



  • Introduction to Information Security Governance 
  • Effective Information Security Governance
  • Governance and Third-Party Relationships
  • Information Security Metrics
  • Information Security Governance Metrics
  • Information Security Strategy
  • Information Security Strategy Development
  • Strategy Resources and Constraints
  • Other Frameworks
  • Compliances
  • Action Plans to Implement Strategy



Discussion and practice questions

Domain 2: Information Risk Management and Compliance



  • Information Risk Management
  • Risk Management Overview
  • Risk Assessment
  • Information Asset Classification
  • Assessment Management
  • Information Resource Valuation
  • Recovery Time Objectives
  • Security Control Baselines
  • Risk Monitoring
  • Training and Awareness



Discussion and practice questions

Domain 3: Information Security Program Development and Management



  • Information Security Program Management Overview
  • Information Security Program Objectives
  • Information Security Program Concepts
  • Information Security Program Technology Resources
  • Information Security Program Development
  • Information Security Program Framework
  • Information Security Program Roadmap
  • Enterprise Information Security Architecture (EISA)
  • Security Program Management and Administration
  • Security Program Services and Operational Activities
  • Controls
  • Security Program Metrics and Monitoring
  • Measuring Operational Performance
  • Common Information Security Program Challenges



Discussion and practice questions

Domain 4: Information Security Incident Management



  •  Incident Management
  • Overview and Procedures
  • Resources and Objectives
  • Metrics and Indicators
  • Business Continuity and Disaster Recovery Procedures
  • Post Incident Activities and Investigation



Discussion and practice questions



Assessment Test




Praveen is a seasoned IT leader and international trainer having 30+ years of experience in creating IT strategies, managing large scale IT transformation, operational optimization, information and cyber security, governance and compliance programs across Banking and Finance, Manufacturing, Information Technology, Consulting in Pubic and Private sector in APAC region.

He is passionate about coaching, mentoring, and facilitating training programs and consider himself a life-long learner. He has been conducting accredited courses for globally recognized certifications in Information Security, Cyber Security, Audit, Risk Management & Project Management in the Asia Pacific region especially for CISA, CISM, CRISC, Cyber Security, RMP, PMF, CAPM, certification from ISACA & PMI. Colleagues see him as a mentor, a positive, optimistic, diverse, inspiring leader & trainer.


He holds CDPSE, CISA, CISM, CRISC, PMP, PMI-ACP, ASM, ITILV3 Foundation credentials.


He is active member of PMI, ISACA and other regional not-for-profit organizations.




Trainers Subject Matter Expertise


  • Business & IT Strategic Planning
  • Information & Cyber Security
  • Project Management
  • IS Audit & Compliance
  • Risk Management
  • Business Analysis



Fees Structure

Please note

 For Virtual Training classes (VTC), please ensure to have good internet connection and webcam. Display of face video throughout the course is mandatory to attend the course, failing which, Andy InfoSec reserve the right to refuse or remove individuals from the class. 

35,000 INR : Training Fees 

10,000 INR : ^^ CISM Review Manual 

30,000 INR : ^^ CISM Review QA & Explanation Database (12 month subscription)


Total : 75,000 INR 


Enroll or contact us to ask about promotional offers and discounts 


Financial Assistance also available - Click for details


Exam Fees not included and need to be paid directly to ISACA


^^ : Recommended 



Exams are conduced online by ISACA.


A student would need to register at the ISACAs web portal to schedule for the examination for CISM after paying the necessary fee. Exams are conduced online by ISACA.




 For more information about the exam, waiver and to register for an ISACA exam, please refer to the exams page on the ISACA website

Individual should register directly with ISACA®. 


*ISACA does not endorse, approve, or sponsor Andy InfoSec, its CISA course or any of its other products and/or services, nor is it affiliated with Andy InfoSec in any manner. CISA is a registered trademark of the ISACA®